Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

traffic diversion when attack starts.

I would like to configure like attached ppt file,

check the scenerio and configure procedure,

Hall of Fame Super Silver

Re: traffic diversion when attack starts.

Hello Seungyeop,

to perform actually diversion some router needs to change the BGP next-hop attribute.

What you can implement is that GD or MSFC colocated with MSFC sends out advertisement with BGP community specified.

When the route is added with a specific BGP community the border router to perform diversion needs to set a different BGP next-hop that of ER router.

something like

route-map selected-diversion permit 10

match community 10

set ip next-hop er-ip-addr

Hope to help


New Member

Re: traffic diversion when attack starts.

thank for your opinion.

but in BGP, we must advertise GD's 32 host routing to ER as network, redi.

However, in R1, We don't know static route received from GD, so we can't network advertisement to R1, and redi it's not solution.

regarding your configuration. Can I advertise only community-list using route-map to announce ER?